Globalprotect with NPS and expired password change

Hi,

I have GP with authentication over NPS (PEAP-MSCHAP2) against active directory configured. Either in Radius server profile and NPS policy configuration "Allow users to change passwords after expiry" is enabled.

User with expired password while lo

Globalprotect for Linux HIP Check Not Sending

Hey community,

I've had a lot of problems when rolling out GlobalProtect for Linux. Currently testing version 5.3.4 since 6.0.1+ didn't work for most of my users. The current issue a user is having is the HIP checks are not sending from the GP clie

Global Protect connection Failed could not verify the server certificate of the gateway

Hi,

I set up a VPN connection according to the guide and after entering a username and password I get the following error:

" global protect connection Failed could not verify the server certificate of the gateway"
I did not find anything on the Internet

Unable to connect to global protect using wifi

When I'm using Mobile data I'm able to connect to global protect but when I'm trying to connect through home wifi I'm unable to connect. Please help me.

GP

I want to install GP on my endpoint for testing before deploying to other endpoint. How do I proceede?

GlobalProtect Linux SAML Auth Fail - Error Bad Request or Hang

Trying to get the GP agent running on linux (Ubuntu 20.04) and keep crashing into SAML auth issues. The GUI client opens a PanGPUI internal browser window that starts to show a google auth page and promptly hangs with 100% CPU utilization, and the CL

Change logo for Authentication Complete page

Hi,

We have PA-850 with globalprotect 5.2.

To make it more clear for our users we would like to customize the logo shown in the portal and whenever the user authenticates correctly. We are using Azure AD via SAML.

Currently we do have the default p

how to forward global protect logs to SIEM

Hi All,

May i know is it possile to forward global protect logs to SIEM?

The current version is 8.1.23-h1

I found the below KB but is for 9.1 and higher.

https://docs.paloaltonetworks.com/globalprotect/10-1/globalprotect-admin/logging-for-globalpro

Windows 10 - Allow Pre-Logon, Windows Hello sign-ins and SSO

I'm unable to get the Windows Hello credentials (such as fingerprint/face ID) to passthrough to Global Protect at logon.

We have our computer tunnel configured to handoff to the user tunnel 60 seconds after logon, so during the logon process, the c

[Mobile] GlobalProtect app behind proxy .pac

In case other users have had the same problem/need, I kindly ask for your support to be able to use and how to configure the GlobalProtect app from the iPhone so that the vpn connection goes through a pac proxy.

In this specific case, I would like

Mac Users getting connection failed unable to verify certificate

Mac users can connect to the Global protect, after entering in their creds they get the error "connection fail, unable to verify certificate" how ever not all users are experiencing this widows users are fine . any ideas

GlobalProtect VPN settings

Hello

I discover GP so I'm sorry, in advance, if my questions are stupide.

Q1 : How I can force my users to enter their credentials (OnPrem AD or Azure AD depending the auth profile configured) when they start GP protect ? I don't want to use SSO

Global Protect VPN Getting error while using sso from palo alto cloud identiy for every first attempt

Global Protect VPN is Getting errors while using SSO from Palo alto cloud identity for every first attempt, and this is not working on Android and IOS devices. Please help if anyone knows.